PS il router è un 837 con IOS FW 3DES
....scusate ma datemi una mano che non ci vedo più dalla fame.......
![Sad :(](./images/smilies/icon_sad.gif)
interface Dialer0
ip address negotiated
ip access-group 150 in
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer-group 1
.......................
!
no ip forward-protocol udp tftp
no ip forward-protocol udp nameserver
no ip forward-protocol udp time
no ip forward-protocol udp netbios-ns
no ip forward-protocol udp netbios-dgm
no ip forward-protocol udp tacacs
ip route 0.0.0.0 0.0.0.0 Dialer0
no ip http server
ip http access-class 23
no ip http secure-server
!
ip nat inside source list 100 interface Dialer0 overload
ip nat inside source static tcp 10.10.10.100 2002 interface Dialer0 2002
ip nat inside source static tcp 10.10.10.100 2975 interface Dialer0 2975
ip nat inside source static tcp 10.10.10.100 2974 interface Dialer0 2974
ip nat inside source static tcp 10.10.10.100 1975 interface Dialer0 1975
ip nat inside source static tcp 10.10.10.100 1974 interface Dialer0 1974
ip nat inside source static tcp 10.10.10.100 1434 interface Dialer0 1434
ip nat inside source static tcp 10.10.10.100 1433 interface Dialer0 1433
ip nat inside source static tcp 10.10.10.100 3389 interface Dialer0 3389
!
access-list 23 remark ***ACL accesso Router
access-list 23 permit xx.xx.xx.xx
access-list 23 permit 192.168.0.0 0.0.0.255
access-list 23 permit 192.168.1.0 0.0.0.255
access-list 23 permit 192.168.2.0 0.0.0.255
access-list 23 permit 192.168.3.0 0.0.0.255
access-list 23 permit 192.168.4.0 0.0.0.255
access-list 23 permit 10.0.0.0 0.255.255.255
access-list 23 permit 192.9.200.0 0.0.0.255
access-list 23 deny any log
access-list 100 permit ip 10.0.0.0 0.255.255.255 any
access-list 150 remark ***ACL IN***
access-list 150 permit tcp any any established
access-list 150 permit tcp host xx.xx.xx.xx any eq 3389
access-list 150 permit tcp host yy.yy.yy.yy any eq 3389
access-list 150 permit tcp host zz.zz.zz.zz any eq 3389
access-list 150 permit tcp host kk.kk.kk.kk any eq 3389
access-list 150 permit tcp host xx.xx.xx.xx any eq 1433
access-list 150 permit tcp host yy.yy.yy.yy any eq 1433
access-list 150 permit tcp host kk.kk.kk.kk any eq 1433
access-list 150 deny ip any any
dialer-list 1 protocol ip permit